Skip to content

[MASWE-0067] New MASWE Debuggable Flag Not Disabled and MASTG-DEMO-0040 (by @appknox) #3244

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
cpholguera merged 10 commits into from
Apr 7, 2025
Merged

[MASWE-0067] New MASWE Debuggable Flag Not Disabled and MASTG-DEMO-0040 (by @appknox) #3244

cpholguera merged 10 commits into from
Apr 7, 2025

Conversation

@ScreaMy7
Copy link
Collaborator

@ScreaMy7 ScreaMy7 commented Mar 27, 2025
edited by cpholguera
Loading

Closes OWASP/maswe#78

This PR adds a new MASWE and DEMO:

New MASWE

  • Adds MASWE-0067 including information about the risks and mitigations associated with the debuggable flag in Android and iOS applications.

New Demo

  • Created MASTG-DEMO-0040 to demo the test case for the debuggable flag in the Android manifest using semgrep.

@ScreaMy7 ScreaMy7 changed the title [MASWE-0067] New MASWE Weakness [MASWE-0067] New MASWE Weakness (by @appknox) Mar 27, 2025
@cpholguera cpholguera changed the title [MASWE-0067] New MASWE Weakness (by @appknox) [MASWE-0067] New MASWE Debuggable Flag Not Disabled (by @appknox) Apr 4, 2025
cpholguera
cpholguera requested changes Apr 4, 2025
View reviewed changes
@cpholguera
Copy link
Collaborator

cpholguera commented Apr 4, 2025

@ScreaMy7 review done, please take a look.

@ScreaMy7
Copy link
Collaborator Author

ScreaMy7 commented Apr 7, 2025

@cpholguera, I have updated it with the changes suggested.

cpholguera
cpholguera reviewed Apr 7, 2025
View reviewed changes
@cpholguera cpholguera changed the title [MASWE-0067] New MASWE Debuggable Flag Not Disabled (by @appknox) [MASWE-0067] New MASWE Debuggable Flag Not Disabled and MASTG-DEMO-0040 (by @appknox) Apr 7, 2025
cpholguera
cpholguera reviewed Apr 7, 2025
View reviewed changes
cpholguera
cpholguera approved these changes Apr 7, 2025
View reviewed changes
Copy link
Collaborator

@cpholguera cpholguera left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks a lot @ScreaMy7 !

@cpholguera cpholguera merged commit 1f4259d into OWASP:master Apr 7, 2025
9 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cpholguera cpholguera cpholguera approved these changes

Assignees

No one assigned

Labels

almost-ready

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[MASWE-0067] New MASWE Weakness

2 participants

@ScreaMy7 @cpholguera